OneLogin - apokalipto/devise_saml_authenticatable GitHub Wiki

  1. Find "Apps" in the top menu bar, and click on "Add Apps."

  2. Search for "SAML" and choose "SAML Test Connector (SP)."

  3. Name your application and choose your icons, then click "Save."

  4. Under "Configuration," enter:

    • Login URL: your home page (e.g. http://localhost:3000/)
    • ACS (Consumer) URL: the session create route (e.g. http://localhost:3000/users/saml/auth)
    • SAML Audience: the metadata route (e.g. http://localhost:3000/users/saml/metadata)
    • SAML Recipient: same as ACS URL
    • SAML Single Logout URL: the idp_sign_out path (e.g. http://localhost:3000/users/saml/idp_sign_out)
    • ACS (Consumer) URL Validator: the session create route, but as a (escaped) regular expression (e.g. http:\/\/localhost:3000\/users\/saml\/auth)

  5. Under "SSO," copy the values into your configuration in config/initializers/devise.rb:

      config.saml_configure do |settings|
    settings.assertion_consumer_service_url = "http://localhost:3000/users/saml/auth"
    settings.issuer = "http://localhost:3000/users/saml/metadata"
    settings.idp_entity_id = "<Issuer URL>"
    settings.idp_slo_target_url = "<SLO Endpoint>"
    settings.idp_sso_target_url = "<SAML 2.0 Endpoint>"
    settings.idp_cert_fingerprint = "<View Details of the certificate to get this value>"
  end

Here

⚠️ **GitHub.com Fallback** ⚠️